BTSE is looking for a Senior Enterprise Security Engineer to manage and secure our enterprise identity and access management infrastructure. This role is central to protecting our enterprise systems, managing user identities, and ensuring secure access to corporate resources.

What You'll Do

Acquire a thorough understanding of the organization's IT and information systems landscape.
Lead security solutioning and design for enterprise IT systems, identifying gaps and recommending enhancements.
Document and establish enterprise security architecture to improve the security posture of Windows, macOS, and mobile environments.
Collaborate with application and infrastructure owners to define integration initiatives.
Plan architectural improvements and provide guidance to support developers, engineers, and analysts.
Apply risk-based thinking to enable teams to make informed security decisions.
Provide ongoing support of IAM technologies, including single sign-on, multi-factor authentication, and user lifecycle management.
Manage the user account lifecycle end-to-end: provisioning, securing, access reviews, and deactivation.
Implement and manage role-based access control (RBAC) strategies across enterprise applications.
Conduct regular access reviews and certification campaigns to ensure compliance.
Implement and manage privileged access management (PAM) solutions for administrative and service accounts.
Deploy and maintain endpoint security tooling including mobile device management (MDM) and endpoint detection and response (EDR).
Administer productivity suite security configurations including data loss prevention and email security policies.
Secure cloud infrastructure services including IAM policies, security groups, and network access controls.
Implement cloud security best practices around logging, monitoring, and alerting.
Enforce least-privilege access principles across cloud environments and review permissions regularly.
Support cloud workload protection, encryption key management, and secure configuration baselines.

What We're Looking For

5+ years of experience in enterprise security (Infrastructure/Endpoints).
3+ years of experience in AWS/Cloud Security roles.
Experience with enterprise applications (architecture, development, support, and troubleshooting).
Hands-on experience with IAM administration and SAML/OIDC integrations.
Familiarity with Google Workspace administration and security features.
Knowledge of Windows, macOS, and Linux Systems (System Administration/Security Hardening).
Experience with PAM solutions.
Experience with MDM platforms.

Nice to Have

Proficiency in scripting and automation languages (Bash, PowerShell, Python).
Experience with Identity Governance and Administration (IGA) platforms.
Knowledge of Zero Trust architecture principles.
SCIM provisioning and automation experience.
Experience with conditional access policies and risk-based authentication.
Experience with web3 and blockchain technologies.
Relevant certifications: CISSP, CEH, AWS Certified Security Specialty, or equivalent.